Privacy Maturity Assessment

Benchmark your privacy policies, processes, and technology against leading standards and gain actionable insights for maturing your program.
Privacy Maturity Assessment 1

Measuring Your Privacy Maturity

Data privacy is more than just compliance. Today, privacy is about designing, operating, and using technology in a way that secures personal data, meets regulatory requirements, builds consumer trust, and supports business needs. But accomplishing these goals is a significant challenge. Our Privacy Maturity Assessment is designed to benchmark your policies, processes, and technologies against leading privacy standards and provide you with a clear picture of your strengths, risks, and opportunities for improvement.

Our Approach

Our assessment is built on the NIST Privacy Framework, Generally Accepted Privacy Principles (GAPP), and HIPAA Breach Notification requirements and supported by Focal Point’s collective data privacy, cybersecurity, and regulatory compliance experience.

Phase 1

During Phase 1, the Focal Point team collaborates with you to establish the objectives and scope for this engagement, as well as communication methods and a cadence for status reporting. Following this initial step, we coordinate document and interview requests with your team.

  • Clear engagement objectives
  • Established communication methods
  • Document and interview requests

Phase 2

Our team holds both on-site and remote discovery sessions with key stakeholders and subject matter experts within your organization. Following this step, our team builds a current state gap analysis of your policies, procedures, and technologies against industry standards.

Using our assessment model, we evaluate each domain of your privacy program, providing you with a GAPP/NIST maturity score in each area. As a result of this analysis, we are able to identify process inefficiencies and areas for improvement.

  • Benchmarking of the current posture of your privacy program
  • Identified process inefficiencies and areas for improvement
  • Improved decision-making around the level of privacy risk associated with business operations

Phase 3

In the final phase of this assessment, our team communicates the findings of our analysis to your leadership team, helping you gain executive buy-in for the most immediate risks to your organization.

During this phase, we establish target privacy program maturity goals, provide future state recommendations for improvement, and deliver a roadmap for short-term and long-term privacy maturity.

  • Alignment between privacy priorities and enterprise objectives
  • Improved resource allocation
  • More investment in future projects
  • Increased consumer trust

Assessment Focus Areas

Privacy GovernanceThird-Party Risk ManagementTraining and Awareness
Policies and ProceduresCybersecurity ControlsData Classification
Data Management and UseOngoing Compliance ManagementRisk Management
Data Retention Consent and AuthorizationBreach Notification and Response

Different from the Rest

At Focal Point, we take a different approach to managing privacy risk.

Actionable Deliverables

Our privacy maturity assessment doesn't just point out your weaknesses and the urgent need for change. It provides clear, practical guidance for addressing key risks and improving your overall risk posture.

Ongoing Support

After providing our clients with this assessment, we often stay onboard to help them implement our recommendations and mature their programs. We work with you to help you execute your roadmap.

End-to-End Services

Focal Point provides you with end-to-end support. We have experts in cybersecurity, compliance, IAM, and cyber workforce training to help you improve all areas of your program.
Have a question?

Contact Us

Focal Point is excited to take on your biggest data risk challenges. Please complete this short form and we will get in touch with you.

Featured Insights

Recommended reading for those looking to explore the world of data privacy.
NIST Privacy Framework Blog
Blog

Understanding NIST's New Privacy Framework

The NIST Privacy Framework aims to provide a set of privacy protection strategies that organizations can employ to improve their approach to using and protecting personal consumer information. It is designed...
Learn More
Privacy Compliance 1
Blog

Choosing a Privacy Governance Tool

New regulatory requirements have pushed many organizations to implement privacy governance tools to support their privacy programs and manage compliance. Understanding the role of these tools...
Learn More
2020 Privacy Trends Blog
Blog

9 Privacy Trends to Watch in 2020

Over the past year, our data privacy team has helped global organizations build cutting-edge, compliant privacy programs. Through these opportunities, we have identified nine key trends we believe will define...
Learn More